Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
File: 5xHIkR7brjbfGoC76BSyWg-UOfo.mft (raw, json)
Hash identifier: hJbAIgiGN/Ibc+039YRXJoIKETxTWmNyfOkcJ/8E4NY=
Subject key identifier: 86:2B:97:E9:25:3F:B3:5A:55:63:30:EF:A7:A9:49:73:84:D8:DF:C1
Authority key identifier: E7:11:C8:91:1E:DB:AE:36:DF:1A:80:BB:E8:14:B2:5A:0F:94:39:FA
Certificate issuer: /CN=e711c8911edbae36df1a80bbe814b25a0f9439fa
Certificate serial: 019A4EF4397D265C14EE657B0A3F959E5E5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
Manifest number: 0A2A
Signing time: Tue 04 Nov 2025 13:00:19 +0000
Manifest this update: Tue 04 Nov 2025 13:00:19 +0000
Manifest next update: Wed 05 Nov 2025 13:00:19 +0000
Files and hashes: 1: 5xHIkR7brjbfGoC76BSyWg-UOfo.crl (hash: Kp4Hta6Xa3c8SiNmbojehSLlGTokTelBgNBSBSlsO0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:39:7d:26:5c:14:ee:65:7b:0a:3f:95:9e:5e:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e711c8911edbae36df1a80bbe814b25a0f9439fa
Validity
Not Before: Nov 4 13:00:19 2025 GMT
Not After : Nov 5 13:00:19 2025 GMT
Subject: CN=862b97e9253fb35a556330efa7a9497384d8dfc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e7:63:b9:6b:f6:22:71:6b:ba:3e:8d:b4:ca:
5e:b9:e1:53:13:9b:5d:e7:93:96:40:03:4d:28:91:
f1:14:0c:94:18:94:60:9a:22:ea:6e:60:a6:ac:b3:
9a:d3:45:68:25:5f:8f:46:1b:24:de:f5:ba:ea:79:
fc:72:8a:0f:2e:01:bf:35:8a:14:d8:09:cb:09:50:
77:50:90:ea:12:f5:d7:2d:89:0e:09:95:4d:e9:54:
08:db:2b:4d:52:14:af:57:67:b5:13:f3:90:6e:d6:
d9:be:81:54:9f:80:74:b8:69:bb:e6:e6:d6:85:7d:
77:11:ed:e2:94:59:8f:9a:af:67:57:d8:27:c4:0f:
6f:5d:50:e1:a7:e8:bf:0e:91:00:9b:ea:74:bd:db:
e9:a1:2d:f3:25:75:94:c7:6d:6c:b8:e8:53:4e:5b:
75:f3:43:ab:23:89:25:9a:0c:d9:8c:30:33:b4:81:
69:57:66:05:3d:6c:c2:d8:84:f6:d4:65:04:d2:10:
8d:bf:ae:d6:d2:32:ce:cb:8a:6e:45:e5:01:7d:08:
9e:dc:4e:ed:1e:1b:0f:d4:74:40:61:68:91:f8:a5:
41:a0:3f:fa:f4:d9:57:2b:a0:a8:c6:45:89:5f:1b:
e6:34:95:f9:26:98:1e:ac:a5:b4:03:07:7e:b4:b9:
c4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:2B:97:E9:25:3F:B3:5A:55:63:30:EF:A7:A9:49:73:84:D8:DF:C1
X509v3 Authority Key Identifier:
keyid:E7:11:C8:91:1E:DB:AE:36:DF:1A:80:BB:E8:14:B2:5A:0F:94:39:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:f8:5a:17:e0:2e:09:70:00:de:1a:4a:71:6d:e6:c3:8e:89:
aa:7e:73:40:8a:22:3e:61:bc:d4:c1:a3:0f:a5:56:94:ed:8c:
a1:ce:97:3a:4c:69:b9:b5:ce:85:0e:ed:53:08:a2:1e:b6:f3:
01:f7:6d:68:f7:d9:f6:cb:0d:6a:95:f7:60:57:0e:8b:da:27:
04:b0:85:7b:0b:90:fc:9f:01:a9:a4:56:c2:5f:6d:10:fd:9b:
3e:53:ff:aa:40:dc:29:5f:4a:c5:c9:8d:9e:7d:0f:60:f7:d4:
04:fc:5b:be:f0:b7:13:f9:cd:5c:b4:84:2e:47:63:ca:bd:f1:
11:fd:2f:56:e2:97:1d:d1:48:9f:a9:56:17:33:d3:83:11:8e:
75:93:5e:b4:75:aa:95:75:57:9d:de:53:b8:24:78:36:61:33:
de:90:4e:20:87:b9:b2:da:31:5b:a9:fb:dd:b4:31:28:90:86:
2f:c9:ae:08:4f:d4:27:f3:19:af:78:12:59:43:d9:03:51:21:
d8:8f:0c:0b:ce:88:60:9a:9b:61:72:b7:41:04:02:b7:50:b1:
7b:71:e7:52:8f:2c:1b:46:34:af:6a:fb:fe:c8:92:28:56:3f:
da:3b:82:6b:ce:96:d4:bb:c1:93:51:41:5b:6e:71:0f:d3:64:
ac:23:07:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:43:05 2025 by rpki-client